SUMMARY:

High performing Security Operations Center manager with more than 13 years of experience in security, server, client, datacenter, network and project management encompassing large and small environments within the manufacturing and insurance industries and two professional management consulting firms for the public sector. Diverse experience in multiple hardware and software platforms with the ability to lead and manage cross - functional teams through complex implementations.

TECHNICAL EXPERIENCE:

Splunk Search and ES IBM QRadar SIEM FireEye HX/NX/AX CarbonBlack SourceFire OmniPeek IBM TeaLeaf ServiceNow HP Service Center Wireshark Symantec DLP Cofense Triage InfoBlox Windows Server 2003/2008 Exchange 2003/2007 Windows Terminal Server Windows 98/XP/Vista/7/10 Novell Citrix F5 GTM/LTM Cisco Content Services Switches Palo Alto Firewalls PuTTY BMC BladeLogic BMC Remedy ITSM VMware vSphere Virtual Information Center Cisco PIX and ASA Firewall/Router Blue Coat Websense Enterprise McAfee ePO/Anti-Virus/Anti-Spam Trend Micro Anti-Virus and Hosted Email Security Veritas Backup Exec., Symantec Backup Exec. 12.5 Crystal Reports Exact Macola Gentran: Director/Application Integrations/Forms Integration SQL Server 2000 Microsoft SharePoint Microsoft Project Microsoft Visio Active Directory DHCP/DNS TCP/IP

PROFESSIONAL EXPERIENCE:

Confidential, Bethesda, MD

Security Operations Center Lead (Manager)

Responsibilities:

• Expanded team from 9 to 20 team members by interviewing over 100 people and hiring 13 people to implement 24/7/365 incident response coverage
• Provided ongoing and end of year reviews for staff as well as reviewed and approved time sheets
• Coordinated the creation or review of over 100 standard operating procedures by the Incident Response team while using NIST and NARA guidelines to drive the content
• Created various reports to support federal leadership, program leadership and auditors (GAO, OIG, FISMA)
• Provided temporary oversite of the program’s Customer Service Representatives while they searched for a replacement
• Established escalation procedures and on-call schedule for internal and external issues to support the team’s 24/7 operations
• Provided recommendations to federal leadership on managing the team’s security tools and SIEM alerting

Confidential, Columbus, OH

Security Operations Center Specialist/Tech Lead

Responsibilities:

• Performed over 2,200 complex IT risk investigations utilizing various tools to assess network and endpoint anomalies and mitigate as necessary
• Assisted in the discovery and remediation activities during multiple privacy events
• Identified gaps in technological capabilities and works with administrators and team members to find solutions such as writing macros for more efficient log analysis, email templates for cross team communications, and standardized investigation documentation for email communications
• Performed capability uplift of new and existing employees by administering training, updating SOC process documentation, and continually reviewed teammate investigations for consistency
• Engaged in the interview process for new candidates and provided feedback to for final hiring decisions
• Worked as founding member of the Security Command Center Associate Advisory Group facilitating communications between associates and leadership
• Worked various shifts to accommodate the team’s 24-hour schedule and various training opportunities

Confidential, Columbus, OH

Infrastructure Technical Architect Team Lead/Network Engineer

Responsibilities:

• Tracked the datacenter inventory for over 400 servers across multiple sites
• Responsible for completing the networking requirements of engineering documents, firewall requests and URL creation documentation
• Conducted weekend maintenance and release windows to implement updates covering 48 applications
• Performed 24/7 on-call incident responsibilities on the team rotation
• Collected metrics for the team’s incident response performance, batch runtimes and inventory breakdown which was used to determine staffing levels

Confidential, Columbus, OH

IT Manager/EDI Coordinator/Inventory Control Specialist

Responsibilities:

• Planned and carried out email migration from Windows Server 2003 and Exchange Server 2003 to Windows Server 2008 and Exchange Server 2007
• Installed Windows Server 2003 with Websense Enterprise for web content filtering which saved the company an estimated $500,000 per year in productivity loss
• Managed the EDI operations including setup and creation of EDI 850 and 810 integration maps with Gentran: Application Integration and re-engineered the Jo-Ann labeling and ASN process from 6-7 days to a couple hours
• Planed and implemented a new Windows Server 2008 with Terminal Services and a new HP rack mount tape drive for daily backups
• Migrated all user files from Novell to Windows server, consolidated users into groups for easier management, and set the ACLs for the directories based on these groups
• Traveled to Mexico to setup new domain controller/terminal server and EDI computer for use by the warehouse and manufacturing facility
• Oversaw upgrade from Btrieve to SQL for Macola ERP software upgrade
• Maintained all IT resources (network, servers and workstations) and phone systems including voice and data expansions to new locations

Confidential, Columbus, OH

Customer Services Walk-in Representative

Responsibilities:

• Worked with customers to resolve general computer and software problems
• Distributed site-licensed software
• Managed software inventory by copying and labeling software to be distributed